CISSP Free Practice Test

- (Exam Topic 8)
When in the Software Development Life Cycle (SDLC) MUST software security functional requirements be defined?

1. A. After the system preliminary design has been developed and the data security categorization has been performed
2. B. After the vulnerability analysis has been performed and before the system detailed design begins
3. C. After the system preliminary design has been developed and before the data security categorization begins
4. D. After the business functional analysis and the data security categorization have been performed

Correct Answer: D

- (Exam Topic 15)
The personal laptop of an organization executive is stolen from the office, complete with personnel and project records. Which of the following should be done FIRST to mitigate future occurrences?

1. A. Encrypt disks on personal laptops.
2. B. Issue cable locks for use on personal laptops.
3. C. Create policies addressing critical information on personal laptops.
4. D. Monitor personal laptops for critical information.

Correct Answer: A

- (Exam Topic 12)
Which of the following are effective countermeasures against passive network-layer attacks?

1. A. Federated security and authenticated access controls
2. B. Trusted software development and run time integrity controls
3. C. Encryption and security enabled applications
4. D. Enclave boundary protection and computing environment defense

Correct Answer: C

- (Exam Topic 9)
Following the completion of a network security assessment, which of the following can BEST be demonstrated?

1. A. The effectiveness of controls can be accurately measured
2. B. A penetration test of the network will fail
3. C. The network is compliant to industry standards
4. D. All unpatched vulnerabilities have been identified

Correct Answer: A

- (Exam Topic 15)
What type of database attack would allow a customer service employee to determine quarterly sales results
before they are publically announced?

1. A. Polyinstantiation
2. B. Inference
3. C. Aggregation
4. D. Data mining

Correct Answer: A